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^ Technical correspondence: on secure person^ comp^^^^^ 
Stephen T. Kent, Doug Bates 

January 1980 Communications of the ACM, volume 23 issue i 
Publisher: ACM Press 

Full text available: S pdf(726.72 KB) Additional Information: full citation, references 



Design and verification of secure systems 
J. M. Rushby 

December 1981 ACM SIGOPS Operating Systems Review , Proceedings of the eighth 
ACM symposium on Operating systems principles SOSP '81, volume is 

Issue 5 

Publisher: ACM Press 

Additional Information: full citation, abstra ct , references, citings, index 
terms 



Full text available: pdf(961 .76 KB) 



This paper reviews some of the difficulties that arise in the verification of kernelized 
secure systems and suggests new techniques for their resolution. It is proposed that 
secure systems should be conceived as distributed systems in which security is achieved 
partly through the physical separation of its Individual components and partly through the 
mediation of trusted functions performed within some of those components. The purpose 
of a security kernel is simply to allow such ... 



Encryption and Secure Comp uter Net wor ks 
Gerald J. Popek, Charles S. Kline 

December 1979 ACM Computing Surveys (CSUR), volume ii issue 4 
Publisher: ACM Press 

Full text available: S pdf(2.50 MB) Additional Information: full citation , references , citings , index terms 



^ Key managennent for encn/pted broadcast Q 

Avishai Wool 

November 1998 Proceedings of the 5th ACM conference on Computer and 

communications security CCS '98 
Publisher: ACM Press 
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^ Key managem ent for enc rypted broa dcas t Q 
Avishai Wool 

May 2000 ACM Transactions on Information and System Security (TISSEC), volume 3 

Issue 2 
Publisher: ACM Press 

Full text available: ^ pd f(220.36 K B ) Additional Information: full citation, ab stract , r efe r e nces, index terms 

We consider broadcast applications where the transmissions need to be encrypted, such 
as direct broadcast digital TV networks or Internet multicast. In these applications the 
number of encrypted TV programs may be very large, but the secure memory capacity at 
the set-top terminals (STT) is severely limited due to the need to withstand pirate attacks 
and hardware tampering. Despite this, we would like to allow the service provider to offer 
different packages of programs to the users. A user ... 

Keywords: conditional access, pay-per-view 

6 Intrusion detection and response: An empirical analysis of NATE: Network Analysis Q 
of Anomalous T raffic Ev ents 
Carol Taylor, Jim Alves-Foss 

September 2002 Proceedings of the 2002 woricshop on New security paradigms NSPW 
•02 

Publisher: ACM Press 

Full text available: g pdf(899.25 KB) Additional Information: full citation , abstract , references , index terms 

This paper presents results of an empirical analysis of NATE (Network Analysis of 
Anomalous Traffic Events), a lightweight, anomaly based intrusion detection tool. Previous 
work was based on the simulated Lincoln Labs data set. Here, we show that NATE can 
operate under the constraints of real data Inconsistencies. In addition, new TCP sampling 
and distance methods are presented. Differences between real and simulated data are 
discussed in the course of the analysis. 

Keywords: intrusion detection, statistics, traffic analysis 
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Enabling email con fid enti alit y throu g h the use of o p portunistic en cn /pt i on 
SImson L. Garfinkel 

May 2003 Proceedings of the 2003 annual national conference on Digital 

government research dg.o '03 
Publisher: Digital Government Research Center 

Full text available: ^pdf( 51.35 KB) Additional Information: ful l citat ion, abstrac t, refe r ences 

Software for encrypting email messages has been widely available for more than 15 
years, but the email-using public has failed to adopt secure messaging. This failure can be 
explained through a combination of technical, community, and usability factors. This 
paper proposes a new approach to email security that employs opportunistic encryption 
and a security proxy to facilitate the opportunistic exchange of keys and encryption of 
electronic mail. While it appears that this approach offers less se ... 

A flow-based approach t o data gr am sec urity 
Suvo i^lttra, Thomas Y. C. Woo 

October 1997 ACM SIGCOMM Computer Communication Review , Proceedings of the 
ACM SIGCOMM '97 conference on Applications, technologies. 
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architectures, and protocols for computer communication SIGCOMM 
"97, Volume 27 Issue 4 
Publisher: ACM Press 



Full text available: ^.pdK2.M^^ 



Additional Information: fcill citation , abstract , references , citings , index 
terms 



Datagram services provide a simple, flexible, robust, and scalable communication 
abstraction; their usefulness has been well demonstrated by the success of IP, UDP, and 
RPC. Yet, the overwhelming majority of network security protocols that have been 
proposed are geared towards connection-oriented communications. The few that do cater 
to datagram communications tend to either rely on long term host-pair keying or impose 
a session-oriented (i.e., requiring connection setup) semantics.Separately, t ... 

® Internet protocol version 6 (student paper) HI 
Gregory R. Scholz, Clint Evans, Jaime Flores, Mustafa Rahman 

March 2001 Journal of Computing Sciences In Colleges , Proceedings of the seventh 
annual consortium for computing in small colleges central plains 
conference on The journal of computing in small colleges , Proceedings 
of the twelfth annual CCSC South Central conference on The journal of 
computing in small colleges, volume i6 issue 3 

Publisher: Consortium for Computing Sciences in Colleges 

Full text available: ^ pdf( 72.22 KB) Additional Information: full citation, abstract, ref e re nce s, index term s 

Many students, educators, and other professionals are increasingly finding that they need 
to become familiar with networking protocols. While the technical details are more 
complex than most professionals need, an understanding of the basic uses, features, 
terminology, and configurations is essential for any technical decision-maker or computer 
professional. Because of the Internet's dominance, computer professionals need to be, at 
least, familiar with its basic functionality. Currently, Inte ... 

Building reliable, high-performance communication systems fronn components ^ 
Xiaoming Liu, Christoph Kreitz, Robbert van Renesse, Jason Hickey, Mark Hayden, Kenneth 
BIrman, Robert Constable 
December 1999 ACM SIGOPS Operating Systems Review , Proceedings of the 

seventeenth ACM symposium on Operating systems principles SOSP 

"99, Volume 33 Issue 5 
Publisher: ACM Press 

Full text available: 'R| pdf{1 .49 MBi Additional Information: MLcMtign, abstract, references, citings, index 
. : term s 

Although building systems from components has attractions, this approach also has 
problems. Can we be sure that a certain configuration of components is correct? Can it 
perform as well as a monolithic system? Our paper answers these questions for the 
Ensemble communication architecture by showing how, with help of the Nuprl formal 
system, configurations may be checked against specifications, and how optimized code 
can be synthesized from these configurations. The performance results show that we ... 

I'' Cry pto gra ph y and data security Q 
Dorothy Elizabeth Robling Denning 
January 1982 Book 

Publisher: Addison-Wesley Longnnan Publishing Co., Inc. 

Full text available* f5i!|pdf(1 9 47 MB) Additional Information: full citation , abstract , references , cited by . index 
■ \^ terms 

From the Preface (See Front Matter for full Preface) 

Electronic computers have evolved from exiguous experimental enterprises in the 1940s 
to prolific practical data processing systems in the 1980s. As we have come to rely on 
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these systems to process and store data, we have also come to wonder about their ability 
to protect valuable data. 

Data security is the science and study of methods of protecting data in computer and 
communication systems from unauthorized disclosure ... 

File-system development with stackable layers 
John S. Heidemann, Gerald J. Popek 

February 1994 ACM Transactions on Computer Systems (TOCS), volume 12 issue 1 
Publisher: ACM Press 

Full text available* "fj p.df(2 16 MB) Additional Information: full citation , abstract , references , citings , index 
^ terms , review 

Filing services have experienced a number of innovations in recent years, but many of 
these promising ideas have failed to enter into broad use. One reason is that current filing 
environments present several barriers to new development. For example, file systems 
today typically stand alone instead of building on the work of others, and support of new 
filing services often requires changes that invalidate existing work. Stackable file-system 
design addresses these issues in severa ... 

Keywords: composability, file system design, operating system structure, reuse 



^•3 A dynamic network architecture 
Sean W. O'l^alley, Larry L Peterson 

May 1992 ACM Transactions on Computer Systems (TOCS), volume 10 issue 2 
Publisher: ACM Press 

Full text available: Wj pdf(401 .43 KB) Additional Information: fuJI cMl^^^^ abMract. references, citings, index 
• 1^ terms , review 

Network software is a critical component of any distributed system. Because of its 
complexity, network software is commonly layered into a hierarchy of protocols, or more 
generally, into a protocol graph. . Typical protocol graphs— including those standardized in 
the ISO and TCP/IP network architectures— share three important properties; the protocol 
graph is simple, the nodes of the graph (protocols) encapsulate complex functionality, and 
the topology of the graph ... 




Keywords: composibility, dynamic configuration, reuse 



Secure personal computing in a n insecur e network 
Dorothy E. Denning 

August 1979 Communications of the ACM, volume 22 issue 8 
Publisher: ACM Press 

Full text available: ^ p df(654.64 K B) Additional Information: full citation , abstract , references , citings 

A method for innplementing secure personal computing in a network with one or more 
central facilities is proposed. The method employs a public-key encryption device and 
hardware keys. Each user is responsible for his own security and need not rely on the 
security of the central facility or the communication links. A user can safely store 
confidential files in the central facility or transmit confidential data to other users on the 
network. 

Keywords: networks, personal computing, privacy, public-key encryption, security 
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Balanci n g pe rformance and flex i bility w i th har d ware support for network architectures 
Ilija Hadzic, Jonathan M. Smith 

November 2003 ACM Transactions on Computer Systems (IOCS), volume 21 issue 4 
Publisher: ACM Press 

Full text available: ^ pdf(7 19. 03 K B ) Additional Information: ful l citatio n, abstract, references, index terms 

The goals of performance and flexibility are often at odds in the design of network 
systems. The tension is common enough to justify an architectural solution, rather than a 
set of context-specific solutions. The Programmable Protocol Processing Pipeline (P4) 
design uses programmable hardware to selectively accelerate protocol processing 
functions. A set of field-programmable gate arrays (FPGAs) and an associated library of 
network processing modules implemented in hardware are augmented with so ... 

Keywords: FPGA, P4, computer networking, flexibility, hardware, performance, 
programmable logic devices, programmable networks, protocol processing 




16 Integrating security in inter-domain routing protocols 
Brijesh Kumar, Jon Crowcroft 

October 1993 ACM SIGCOMM Computer Communication Review, volume 23 issue 5 
Publisher: ACM Press 

Full text available: "^ pdfd^SS MB) Additional Information: full citation , abstract , citings, index terms 

Network routing protocols work In a vulnerable environment. Unless protected by 
appropriate security measures, their operation can be easily subverted by intruders 
capable of modifying, deleting or adding false information in routing updates. This paper 
first analyses threats to the secure operation of inter-domain routing protocols, and then 
proposes various counter measures to make these protocols secure against external 
threats. 




'"'^ A secure distributed capability ba sed sy ste m ( extended a bstract) 
Howard L. Johnson, John F. Koegel, Rhonda M. Koegel 

October 1985 Proceedings of tlie 1985 ACM annual conference on The range of 
computing : mid-80's perspective: mid-80's perspective ACM '85 

Publisher: ACM Press 

Full text available: ^ pdfn.22 MB) Additional Information: f ull citation , references , index terms 




Keywords: capability architecture, computer security, distributed system security, 
network encryption 



Distributed systems - p ro g rammin g and mana g ement: On remote procedure c a l l 
Patricia Gomes Scares 

November 1992 Proceedings of the 1992 conference of the Centre for Advanced 
Studies on Collaborative research - Volume 2 CASCON '92 

Publisher: IBM Press 

Full text available: pdf(4.52 MB) Additional Information: full citation , abstract , references , citings 

The Remote Procedure Call (RPC) paradigm is reviewed. The concept is described, along 
with the backbone structure of the mechanisms that support it. An overview of works in 
supporting these mechanisms is discussed. Extensions to the paradigm that have been 
proposed to enlarge its suitability, are studied. The main contributions of this paper are a 
standard view and classification of RPC mechanisms according to different perspectives, 
and a snapshot of the paradigm in use today and of goals for t ... 
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^ File servers for netwo rk-b ased distributed systems 
^ Liba Svobodova 

^ December 1984 ACM Computing Surveys (CSUR), volume i6 issue 4 



H 



Publisher: ACM Press 



Full text available- 'S pd ff4.23 MB) Additional Information: full citation , references , citings , index terms . 
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^° Security issue s for wireless ATM networks 
^ Danai Patiyoot 

▼ January 2002 ACM SIGOPS Operating Systems Review, volume 36 issue i 



B 



Publisher: ACM Press 



Full text available: ^pdf(1.75 MB ) Additional Information: full citation, abstract , references, index terms 



To be able to fulfil the need of user in wireless ATM, the system has to acquire features. 
One of the system features for the wireless ATM Is functionality especially the security 
aspect. There is so far tittle, if not none, security consideration In the developing of 
wireless ATM standard. Therefore a wide range of features in security functions is in 
consideration. This paper tried to define the features of security in wireless ATM networks 
considering it features from existing fixed ATM netwo ... 

Keywords: security, wireless ATM 
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